VYPR
Unrated severityNVD Advisory· Published Jul 8, 2008· Updated Jun 16, 2026

CVE-2008-2248

CVE-2008-2248

Description

Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) for Exchange Server 2003 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified HTML, a different vulnerability than CVE-2008-2247.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:microsoft:exchange_server:2003:sp2:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:exchange_server:2003:sp2:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2007:-:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:exchange_server:2007:sp1:*:*:*:*:*:*
    • (no CPE)range: 2003 SP2
  • cpe:2.3:a:microsoft:outlook_web_access:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:outlook_web_access:*:*:*:*:*:*:*:*
    • (no CPE)range: 2003 SP2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.